Vulnerability Details : CVE-2013-1185
The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1) technical-support bundle file or (2) on-device configuration backup, aka Bug ID CSCtq86543.
Products affected by CVE-2013-1185
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1q)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:2.0\(1q\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(1j)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(1j\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1w)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:2.0\(1w\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3l)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3l\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3i)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3i\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(1m)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(1m\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1y)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1y\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.0(2k)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.0\(2k\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.1(1m)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.1\(1m\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.2(1)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.2\(1\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.2cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.2:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1t)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:2.0\(1t\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1p)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1p\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1n)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1n\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1w)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1w\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1q)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1q\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3q)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3q\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.2(1d)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.2\(1d\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.2(1a)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.2\(1a\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.1cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.1:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(4j)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(4j\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(4k)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(4k\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1o)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1o\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(4g)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(4g\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(4f)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(4f\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3y)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3y\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3u)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3u\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1s)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:2.0\(1s\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1m)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1m\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1c)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1c\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.3(1t)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.3\(1t\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(4i)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(4i\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3s)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3s\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.4(3m)cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.4\(3m\):*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 1.0cpe:2.3:o:cisco:unified_computing_system_infrastructure_and_unified_computing_system_software:1.0:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- cpe:2.3:h:cisco:unified_computing_system_6296up_fabric_interconnect:-:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- cpe:2.3:h:cisco:unified_computing_system_6248up_fabric_interconnect:-:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- cpe:2.3:h:cisco:unified_computing_system_6140xp_fabric_interconnect:-:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- cpe:2.3:h:cisco:unified_computing_system_6120xp_fabric_interconnect:-:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
- cpe:2.3:h:cisco:unified_computing_system_integrated_management_controller:-:*:*:*:*:*:*:*When used together with: Cisco » Unified Computing System Infrastructure And Unified Computing System Software » Version: 2.0(1x)
Exploit prediction scoring system (EPSS) score for CVE-2013-1185
0.59%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 68 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-1185
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2013-1185
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-1185
-
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-ucsmulti
Multiple Vulnerabilities in Cisco Unified Computing SystemVendor Advisory
Jump to